CVE-2016-15035

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Aug 28, 2023

Updated: May 17, 2024

CWE ID 79

Summary

CVE-2016-15035 is a newly identified vulnerability that affects Doc2k RE-Chat 1.0. This issue, classified as problematic, lies within the js_on_radio-emergency.de_/re_chat.js file. The manipulation of this component results in cross-site scripting, enabling an attacker to inject malicious code. The attack can be initiated remotely, posing a significant risk. To mitigate this vulnerability, it is strongly recommended to apply the patch with the identifier bd17d497ddd3bab4ef9c6831c747c37cc016c570. Additionally, the vulnerability has been assigned the identifier VDB-238155 by threat intelligence platforms.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sd8gfr
https://www.cve.org/CVERecord?id=CVE-2016-15035
https://nvd.nist.gov/vuln/detail/CVE-2016-15035

Back to Vulnerability Database

CVE-2016-15035

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations